[wp-trac] [WordPress Trac] #53242: Potential private information leak in REST API doing it wrong
WordPress Trac
noreply at wordpress.org
Fri May 21 15:58:17 UTC 2021
#53242: Potential private information leak in REST API doing it wrong
-------------------------------+------------------------------
Reporter: anubisthejackle | Owner: (none)
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting Review
Component: REST API | Version:
Severity: normal | Resolution:
Keywords: reporter-feedback | Focuses: rest-api
-------------------------------+------------------------------
Comment (by anubisthejackle):
Here are the links:
http://dev.travisweston.com/wp-json/example/v1
http://dev.travisweston.com/wp-json/example/v1/public
http://dev.travisweston.com/wp-json/example/v1/hidden
You can see the hidden endpoint in the headers, but it does not display in
the listing--as intended.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/53242#comment:2>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list